What rarely-used web features are hurting security? What might we
remove if we had data on prevalence?
https://etherpad.mozilla.org/MeasuringBadThings
___
dev-security mailing list
dev-security@lists.mozilla.org
A wifi MITM attacker can steal all the passwords you have saved on
http sites, by sending you to fake versions of each site and watching
what the browser fills into the form.
You're safe iff you initially saved the password from an https page,
or if the site now uses STS, or maybe if you're